Cybersecurity Analyst - Level 2
Wellington, Wellington, New Zealand
Datacom
We work across Australia and New Zealand to make a difference in people’s lives by turning the imaginable into reality.Position: Cybersecurity Analyst - L2
Datacom Location: All of NZ
Our Why
Datacom works with organisations and communities across Australia and New Zealand to make a difference in people’s lives and help organisations use the power of tech to innovate and grow.
About the Role (Your Why)
As a Cybersecurity Analyst (L2), you will be responsible for analysing security events of interest before managing the incident through to resolution or identifying an opportunity for tuning. This role uses defensive measures and information collected from a variety of sources to identify, analyse, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.
Our offices are based in Auckland, Wellington and Christchurch though we are open to hiring the right talent anywhere in NZ. We like to bring people together in person when we can, but we are mindful of the benefits of working from home for work/life balance. We therefore leave it to you and the team you join to figure out what works best!
** There is a preference for NZ citizens or residents only though some current visa holders will be considered **
What You’ll Do
As a Cybersecurity Analyst L2, your general duties will be to:
- Use data collected from a variety of cyber defence tools (e.g., IDS alerts, firewalls, network traffic logs) to analyse events that occur within their environments for the purposes of mitigating threats.
- Provide guidance to L1 Cybersecurity Analysts.
- Respond to customer queries, providing customer service that exceeds our customers’ expectations.
- Bring Operational Security Excellence to any threat hunting/identification, threat intel research, threat intel notifications/subscriptions, tuning identification, and identification of enrichment opportunities that you carry out.
- Provide recommendations on platform enhancements and how to improve cybersecurity services.
- Incident, Change and Problem Management.
- Daily Event/Incident/Ticket Reviews.
- Escalate Security Incidents to the appropriate resolver group(s)
- Ensure documentation and the knowledgebase are kept up to date
- Compiling and completing internal and customer reporting.
We are a pretty agile company and are keen to respond to customer, technology and internal stakeholders’ changing requirements and this can mean we evolve in our roles to meet those needs.
What You’ll Bring
To be successful in your application, you should have:
- 2+ years in a similar security analyst role and security incident response and resolution handling.
- Hands-on experience with network security or equivalent study.
- Experience in working with security tools such as: SIEM, anti-malware, endpoint security, URL and application control, IDS/IPS, email filtering.
- Experience working in ticketing systems and handling workflow.
- An understanding of Security Information & Event Management (SIEM) concepts and functionality.
- Knowledge of networks, firewalls, proxies concepts and technologies.
- Knowledge of security industry frameworks such as NIST 800-61, NZISM and Cybersecurity advisories/forums such as CERT NZ, FIRST, NZITF.
- Knowledge of cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity threats.
- Knowledge of Microsoft Windows domain technologies (e.g. Active Directory) and applications (e.g. Word, Excel).
- Skills in log event correlation, antivirus/malware protection.
- Skills in Linux OS and working with BASH.
And it would be desirable to have knowledge of cybersecurity vulnerability testing, risk analysis methodologies and forensic techniques, as well as experience with vulnerability scanning and reconnaissance methods and skills in vulnerability management, scripting languages (e.g. Power Shell, Perl etc.), penetration testing and SQL or similar database skills.
Some useful qualifications would be:
- ITIL - Information Technology Infrastructure Library Foundation
- CompTIA Security+
- CompTIA Analyst+
- Security related vendor qualifications
- SANS GCIH - GIAC Certified Incident Handler
- SANS GIAC - GIAC Certified Intrusion Analyst
And CISSP, OSCP, CEH, and SANS GMON and SANS GCED.
Why Join Us Here at Datacom?
Datacom is one of Australia and New Zealand’s largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us.
We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You’ll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment.
We operate at the forefront of technology to help Australia and New Zealand’s largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities.
We want Datacom to be an inclusive and welcoming workplace for everyone and take pride in the steps we have taken and continue to take to make our environment fun and friendly, and our people feel supported.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Agile Antivirus Bash CEH CERT CISSP CompTIA Cyber Kill Chain Endpoint security Firewalls GCED GCIH GIAC IDS Incident response IPS ITIL Linux Malware Network security NIST OSCP Pentesting Perl Risk analysis SANS Scripting SIEM SQL Vulnerability management Windows
Perks/benefits: Career development Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cloud Security Architect jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Manager Pentest H/F jobs
- Open Security Operations Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Network Security Engineer jobs
- Open Information Security Architect jobs
- Open C-related jobs
- Open CISM-related jobs
- Open Risk assessment-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Analytics-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DoD-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open DevOps-related jobs
- Open APIs-related jobs
- Open Splunk-related jobs
- Open IDS-related jobs
- Open IPS-related jobs
- Open Kubernetes-related jobs